This project has moved. For the latest updates, please go here.

VeraCrypt bootloader timeout

Topics: Feature Requests
Feb 22 at 2:15 PM
Following the FAQ we can enable the option 'Do not show any texts in the pre-boot authentication screen' in System Encryption menu. But there is still no option to enable timeout after which the bootloader would continue to a non-encrypted operating system.

Is it ok to ask for this little thing to be involved in VeraCrypt 1.20 release? Pretty please oh You Kind Mighty Developers :)

PS. How soon 1.20-stable gonna be released?
Developer
Feb 25 at 7:33 PM
Edited Feb 25 at 7:33 PM
Probably tomorrow I'll prepare BETA2 patch 1. It will contain PasswordTimeout option in DcsProp for EFI boot loader
Feb 26 at 5:21 PM
Edited Feb 26 at 6:07 PM
kavsrf wrote:
Probably tomorrow I'll prepare BETA2 patch 1. It will contain PasswordTimeout option in DcsProp for EFI boot loader
Great! But does it mean MBR-based bootloader will not contain it? Maybe I'm not understood, I'd like VeraCrypt bootloader to be able to virtually "press" ESC after a custom period of no activity (e.g. no keystroke). I imagine it to be a peace of cake for U, 5min of coding :)
Developer
Feb 28 at 7:41 PM
Edited Mar 1 at 8:23 AM
My interest is EFI. It is more flexible.
Preview is published https://sourceforge.net/projects/dc5/files/beta/
It can boot many scenarios.
  1. Boot open system(Linux) with timeout (or if wrong password)
  2. Boot OS encrypted with default password locked to TPM or SMBIOS
  3. Boot OS with keys from external USB
  4. Hidden OS or full disk encryption in EFI
  5. Picture password if touch screen is supported.
  6. Two factors authorization ("I have", "I know")
    etc. see DcsProp.example
Note: Legacy BIOS code modification is very limited in size (~30K) and can cause problems in different computer configurations.
I can try to build preview for U If U need it so. It will be special. Probably the version will not be added to main branch.
Mar 5 at 2:29 PM
Edited Mar 5 at 2:29 PM
Thanks kavsrf, I do not need a special build. I assume then there's never gonna be timeout implemented in VeraCrypt MBR-based bootloader.